Friday, October 3, 2025
Aspen Digital’s offensive cyber project will explore putting in place legal protections for the private sector and the creation of an economic statecraft toolkit, as part of an effort to tackle complex issues in a priority area for the Trump administration.
The Defense Department has unveiled a new framework for cyber risk management with a focus on automation, speed and the use of continuous monitoring.
Defense Department Chief Information Officer nominee Kirsten Davies highlighted the importance of reaching zero-trust implementation goals set out by the Pentagon and plans to address gaps if confirmed, in response to questions submitted in advance of her recent confirmation hearing.
A new acquisition final rule for the Pentagon's Cybersecurity Maturity Model Certification program is accelerating the work of the independent accreditation body responsible for meeting the demand for assessments and providing guidance to assessors, according to Cyber AB CEO Matthew Travis.
The Defense Department details costs to "small entities" and the broader CMMC ecosystem as part of an analysis published with a final rule to implement acquisition requirements for the Pentagon's upcoming Cybersecurity Maturity Model Certification program.
Katie Arrington, performing the duties of the Defense Department chief information officer, spoke about the need to move at speed when it comes to cyber in an appearance at the Billington Cybersecurity Summit, where she provided updates on "blowing up" DOD's risk management framework and on a final rule seven years in the making to launch the Cybersecurity Maturity Model Certification program.
The Pentagon is developing resources to train acquisition officials on setting requirements under its Cybersecurity Maturity Model Certification program, following the release of a final rule set to go into effect on Nov. 10.
Legislation from House Homeland Security Committee Chairman Andrew Garbarino (R-NY) to reauthorize the 2015 Cybersecurity Information Sharing Act could create challenges for reaching an agreement before the Sept. 30 deadline, according to stakeholders who also expressed concerns over plans in the Senate.
The Defense Department has clarified its plans for the rollout of the Cybersecurity Maturity Model Certification program through the release of a class deviation postponing an Oct. 1 compliance requirement for contractors in a 2020 interim final rule put on hold by the Biden administration.
The accreditation body behind the Pentagon's Cybersecurity Maturity Model Certification program has launched a new advisory council made up of individuals from authorized certified third-party assessment organizations to inform future work.
Microsoft is launching a strategy to prepare for the looming risks of quantum computing with a "security-first mindset," including a full transition to post-quantum cryptography two years ahead of the government's 2035 deadline for federal agencies.
Officials from the two research agencies revealed the results of the AI Cyber Challenge at the 2025 Def Con in Las Vegas, highlighting significant achievements of the seven teams who were finalists in the competition to use artificial intelligence to find vulnerabilities and patch source code.
The Cybersecurity and Infrastructure Security Agency's presence at the annual Black Hat conference in Las Vegas is aimed at assuring attendees of the role the agency plays in fostering operational collaboration between government and industry, according to CISA director of public affairs Marci McCarthy.
The accreditation body behind the Pentagon’s Cybersecurity Maturity Model Certification program provided an update on the voluntary efforts of defense contractors to get third-party assessments at an energized town hall meeting, where stakeholders seemed encouraged by the Defense Department’s recent milestone to move toward a final rule kicking off the formal launch of the initiative.
The official kickoff for the Pentagon's Cybersecurity Maturity Model Certification program is getting closer to fruition with a final rule to establish a timeline for contracts now entering the interagency review process at the Office of Management and Budget.
The Pentagon is setting up a formal structure to guide the next stage of implementing zero trust across the Defense Department, including the creation of a Chief Zero Trust Officer and a DOD ZT Executive Committee.
The Senate Armed Services Committee has released the full text of its version of the fiscal year 2026 defense authorization bill, including provisions to require the Pentagon to produce a strategy on protecting defense critical infrastructure and the creation of a public-private partnership to address cyber threats from artificial intelligence.
The House Armed Services Committee has approved in a 55-2 vote its version of the fiscal year 2026 defense authorization bill, with an amendment to attach vulnerability disclosure legislation from House Oversight cyber subcommittee Chair Nancy Mace (R-SC) to the major defense policy bill.
The House Armed Services Committee has added amendments to its version of the fiscal year 2026 defense authorization bill that would require briefings on using "cyber deception technologies" in the context of zero trust and steps to integrate artificial intelligence across the Defense Department.
The Pentagon is asking for stakeholder feedback on plans to modernize the Defense Department's acquisition processes under President Trump's mandate to expedite the adoption of commercial solutions and support small businesses, as work continues to finalize a major cyber certification initiative.